erbium | 26-af4929548594e7adcfceace9d201510651bab248e5ee43d3411593daac809e06[.]zip

General

Target

26-af4929548594e7adcfceace9d201510651bab248e5ee43d3411593daac809e06.zip
Size

1.2MB
MD5

5314e89fbe64a2cd01b058670787fcd9
SHA1

ca8d2cfc7db7dc158e54c59344419075a528c1b6
SHA256

2a8c47a717dfc5924def776973ff896704444eb1ea33342756b497280f8ac972
SHA512

0306018ee570cc1075b57fe07a0bc9c5c8fb09f7911c96f7e05bf9b2d385106cb6806b08dcc7388650d04ff0dd3412935d1f61bf096b5448d051911bbc682d05
SSDEEP

24576:MDV3ZB3NunV+IRmDeG4LZhUcs0hzZyM+QBOO5J1KFFZnqObBv89umfRxy:MDVzNgnRo49K9EQMn9jADZqOIumfO

Score

10^/10

erbium

Family

erbium

C2

http://77.73.133.53/cloud/index.php

26-af4929548594e7adcfceace9d201510651bab248e5ee43d3411593daac809e06.zip
.zip

Password: infected
af4929548594e7adcfceace9d201510651bab248e5ee43d3411593daac809e06.dll
.dll windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 316KB - Virtual size: 315KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 87KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ